New HookAds Malvertising Campaign
A new malvertising campaign known as HookAds has been observed using the Fallout exploit kit to install several other well-known malware.
HookAds uses low-quality adverts commonly displayed on online gaming, adult-oriented or search engine optimisation forum sites to deliver Fallout. These adverts contain JavaScript which will redirect users through series of decoy websites containing seemingly legitimate advertisements, whilst Fallout is installed in the background.
Once installed, Fallout exploits several vulnerabilities to deliver its target payload. Installed payload include the DanaBot banking trojan, the Nocturnal Stealer spyware and the GlobeImposter ransomware.
Affected Platforms:
- Microsoft Windows – All versions
Ensure all Windows security updates are installed in order to protect your system from potential vulnerabilities such as this one.
See CVE-2018-8174 for further details.
Duncan is a technology professional with over 20 years experience of working in various IT roles. He has a interest in cyber security, and has a wide range of other skills in radio, electronics and telecommunications.